Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Return to OTMoveIt2, right click in the "Paste List of Files/Folders to be Moved" window (under the yellow bar) and choose Paste.

Click the red Moveit! button.

Copy everything in the Results window (under the green bar) to the clipboard by highlighting ALL of them and pressing CTRL + C (or, after highlighting, right-click and choose copy), and paste it in your next reply.

Close OTMoveIt2

If a file or folder cannot be moved immediately you may be asked to reboot the machine to finish the move process. If you are asked to reboot the machine choose Yes.

FINALLY FOR NOW

AVG may call this programme a Trojan - it is not. So you may have to disable AVG to run it

Download OTScanit to your Desktop and double-click on it to extract the files. It will create a folder named OTScanIt on your desktop.

Close ALL OTHER PROGRAMS.

Open the OTScanit folder and double-click on OTScanit.exe to start the program.

Check the box that says Scan All User Accounts

Check the Radio buttons for Files/Folders Created Within 90 Days and Files/Folders Modified Within 90 Days

Under Additional Scans check the following:

Reg - BotCheck

Reg - Desktop Components

Reg - Disabled MS Config Items

File - Additional Folder Scans

File - Purity Scan

Now click the Run Scan button on the toolbar.

Let it run unhindered until it finishes.

When the scan is complete Notepad will open with the report file loaded in it.

Click the Format menu and make sure that Wordwrap is not checked. If it is then click on it to uncheck it.

Please attach the log in your next post.

To attach a file, do the following:

Click Add Reply

Under the reply panel is the Attachments Panel

Browse for the attachment file you want to upload, then click the green Upload button

Once it has uploaded, click the Manage Current Attachments drop down box

Posted 06 August 2008 - 12:05 PM

Type in the name of a restore folder where the backed up registryfiles should be saved, or click "..." to browse your computer's drivesand select a folder. You can also simply leave the default, which is afolder named ERDNT inside your Windows folder, the advantage beingthat you have access to this folder from the Windows Recovery Consolein case Windows does not boot anymore.

Next, select the backup options:

- System registry:

- Current user registy: .

- Other open user registries:

Click "OK" and wait until the backup process is complete. (Note thatdepending on your system configuration this may take some time, andthat the first bar is NOT a progress bar, just an indicator that theprogram is still running.) The ERDNT program for later restoration ofthe registry is automatically copied to the restore folder.

WARNING these fixes are designed for this user only and may cause damage if run on an uninfected machine

Next you will need to create the repair registry fix to do that copy and paste ALL of the above in the quote box to a notepad file. Ensure there is no space above the REGEDIT4.Then in notepad go to FILE > SAVE AS and in the dropdown box select SAVE AS TYPE to ALL FILES Then in the FILE NAME box type fix.regThis will create a fix.reg file on your desktop

To use this file you will need to right click the icon and select merge, accept the warning if it appears and you are done.

THEN

Please double-click OTMoveIt2.exe to run it.

Copy the file paths below to the clipboard by highlighting ALL of them and pressing CTRL + C (or, after highlighting, right-click and choose Copy):

Return to OTMoveIt2, right click in the "Paste List of Files/Folders to be Moved" window (under the yellow bar) and choose Paste.

Click the red Moveit! button.

Copy everything in the Results window (under the green bar) to the clipboard by highlighting ALL of them and pressing CTRL + C (or, after highlighting, right-click and choose copy), and paste it in your next reply.

Close OTMoveIt2

If a file or folder cannot be moved immediately you may be asked to reboot the machine to finish the move process. If you are asked to reboot the machine choose Yes.

Make sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish.

If an update is found, it will download and install the latest version.

Once the program has loaded, select "Perform Quick Scan", then click Scan.

The scan may take some time to finish,so please be patient.

When the scan is complete, click OK, then Show Results to view the results.

Make sure that everything is checked, and click Remove Selected.

When disinfection is completed, a log will open in Notepad and you may be prompted to Restart.(See Extra Note)

The log is automatically saved by MBAM and can be viewed by clicking the Logs tab in MBAM.

Copy&Paste the entire report in your next reply.

Extra Note:If MBAM encounters a file that is difficult to remove,you will be presented with 1 of 2 prompts,click OK to either and let MBAM proceed with the disinfection process,if asked to restart the computer,please do so immediatly.

Logs required : OTMoveit, MBAM and a new Hijackthis log Plus how is your Computer now ?

Josee71

Posted 14 August 2008 - 09:10 AM

Josee71

New Member

Topic Starter

Member

3 posts

I have tried to do what you wrote to me.

I have followed your instructions precisely but OTScanit will not work.
I get a message that says (free translation from Flemish):"Cannot get entry to the file. It is possible that you have no permission to use this item.

Once you install the Recovery Console, when you reboot your computer, you'll see the option for the Recovery Console now as well. Don't select Recovery Console as we don't need it. By default, your main OS is selected there. The screen stays for 2 seconds and then it proceeds to load Windows. That is normal.

Post the log from ComboFix when you've accomplished that, along with a new HijackThis log.

Josee71

Posted 18 August 2008 - 04:37 AM

Josee71

New Member

Topic Starter

Member

3 posts

Hello,

I have tried to do as you have said. i downloaded combo fix and printed the instructions. Then i tried installing the recovery console just as it was explained in the combo fix tutorial. Id did not work. When i tried to drag the Recovery console icon on the Combo Fix Icon, the only thing that happened is that Combo Fix wanted to start. It did not happen like the tutorial said. I am afraid to do something wrong so i stopped there.
What should I do now.
Maybe we can leave it as it is now. My computer is working fine and I worry that I might do something wrong.
School is beginning again and I really need my computer.